Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
information disclosure vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2022-20734
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with netadmin privileges could ex...
Cisco Catalyst Sd-wan Manager
6.5
CVSSv3
CVE-2022-20744
A vulnerability in the input protection mechanisms of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote malicious user to view data without proper authorization. This vulnerability exists because of a protection mechanism that relies on the exi...
Cisco Firepower Management Center
4.7
CVSSv3
CVE-2018-0119
A vulnerability in certain authentication controls in the account services of Cisco Spark could allow an authenticated, remote malicious user to interact with and view information on an affected device that would normally be prohibited. The vulnerability is due to the improper di...
Cisco Conference Director 2017-08-30
4.3
CVSSv3
CVE-2018-15432
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit...
Cisco Prime Infrastructure 3.2
4.3
CVSSv3
CVE-2018-15433
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit...
Cisco Prime Infrastructure 3.2
6.5
CVSSv3
CVE-2020-3498
A vulnerability in Cisco Jabber software could allow an authenticated, remote malicious user to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted mes...
Cisco Jabber
6.5
CVSSv3
CVE-2023-20207
A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an authenticated, remote malicious user to view sensitive information in clear text on an affected system. This vulnerability exists because certain unencrypted credentials are stored. An attac...
Duo Authentication Proxy 5.8.1
Duo Authentication Proxy 6.0.0
6.5
CVSSv3
CVE-2022-20680
A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote malicious user to access sensitive information on an affected device. This vulnerability is due to improper enforcement of Administrator privilege levels for ...
Cisco Prime Service Catalog 12.1
Cisco Prime Service Catalog
5.3
CVSSv3
CVE-2016-6398
The PPTP server in Cisco IOS 15.5(3)M does not properly initialize packet buffers, which allows remote malicious users to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274.
Cisco Ios 15.5\\(3\\)m
5.3
CVSSv3
CVE-2017-12295
A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote malicious user to access sensitive data about the application. An attacker could exploit this vulnerability to gain information to conduct additional reconnaissance attacks. The vulnerability is...
Cisco Webex Meetings Server -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »